Cyber Security Cloud, Inc. (Headquarters: Shibuya-ku, Tokyo; President and CEO: Akira Ohno; hereinafter referred to as "Cyber Security Cloud") is pleased to announce the status of cyber attacks detected during the Golden Week holidays of 2020, including the beginning of May.
This data is a research report that aggregates, analyzes, and calculates attack logs observed using "Shadankun," Cloud-based WAF provided by our company that visualizes and blocks cyber attacks on websites, and "WafCharm," an AWS WAF automation operation service.

■ Survey Overview
-Survey period: April 1, 2020 (Wednesday) to May 13, 2020 (Wednesday)
- Survey target: User accounts using "Shadankun" and "WafCharm "
-Investigation method: Analysis of attack logs observed by "Shadankun" and "WafCharm"

■ Cyberattacks mainly during the Golden Week holidays in 2020

Trends in the number of attacks detected by each type observed by "Shadankun" and "WafCharm"

Cyber attacks on companies using our services (" Shadankun" and "WafCharm") from Wednesday, April 1st to Wednesday, May 13th, 2020, showed a sharp increase from Saturday, May 2nd, when the Golden Week holidays began, to Monday, May 4th. Although there was a temporary decrease from Tuesday, May 5th, there was an increase again from Friday, May 8th, leading up to the holiday. The total number of cyber attacks detected from Friday, May 1st to Sunday, May 10th was approximately 11.44 million, an increase of more than 1.5 times compared to the total of approximately 7.59 million from Wednesday, April 1st to Friday, April 10th.

In the first half of Golden Week (Saturday, May 2nd to Sunday, May 3rd), there was an increase in attempts to log in to web servers via methods other than the web, which are classified as "Cross site scripting" and "Other," and towards the second half of Golden Week, there was a sudden increase in attacks against vulnerabilities in the software that makes up web servers, which are classified as "Web Attack."In addition, although the percentage of these attacks was small compared to the total, there was also a sudden increase in "Traversal attacks," which involve searching for important files or searching for higher-level directories.
In addition, there is a constant rate of access from User Agents that appear to be malicious bots or scanning tools, as well as the recently discussed "SSRF (Server Side Request Forgery)," and scans targeting access control flaws and inappropriate security settings, which are ranked highly in the OWASP Top 10.

Cyberattacks tend to increase during long holidays when there are fewer people in the office, and this trend was particularly evident during Golden Week in 2020. As teleworking becomes more prevalent in more companies in the future, offices will become like long vacation environments even when there are no long vacations, which is expected to increase cybersecurity risks for companies.
In order to protect corporate websites from the threat of cyber attacks, which will become increasingly important in the future, we will continue to work hard to support the creation of an environment where users can use our services with peace of mind, and to protect corporate businesses.

[About Cloud-based WAF "Shadankun"]
https://www.shadan-kun.com/

Cloud-based WAF "Shadankun" is a web security service that visualizes and blocks cyber-attacks on websites and web servers. Utilizing the attack detection AI engine "Cyneural" that uses deep learning, it not only detects general attacks, but also discovers unknown attacks and false positives at high speed, and has the world's leading threat intelligence. The team "Cyhorus" responds quickly to the latest threats. The number of companies and sites that have introduced it is ranked first*1 in Japan, and it is used regardless of the size of the company.

About WafCharm, the AWS WAF automation service
https://www.wafcharm.com/

"WafCharm" is an AI-powered service that automates the operation of AWS WAF rules (signatures). It features the AI engine "WRAO" (Patent No. 6375047), which uses machine learning to automatically optimize WAF rules. It automatically applies the optimal rules to AWS WAF for each customer, leveraging over 1 trillion pieces of big data accumulated through "Shadankun" Cloud-based WAF WAF with the highest cumulative number of sites and companies in Japan*1. Our cyber threat information monitoring team, "Cyhorus," ensures rapid response to the latest threats. We also provide support from development engineers with leading expertise in signature customization. We sell to over 1 million AWS users in 190 countries.

About Cyber Security Cloud, Inc.
Company name: Cyber Security Cloud, Inc.
Address: VORT Ebisu Maxim 3rd Floor, 3-9-19 Higashi, Shibuya-ku, Tokyo 150-0011
Representative: President and CEO Akira Ohno
Established: August 2010
URL: https://www.cscloud.co.jp/
With the mission of "creating a safe and secure cyberspace for people all over the world," Cyber Security Cloud provides web application security services worldwide on a subscription basis, leveraging the world's leading cyber threat intelligence and AI technology. Furthermore, AWS, which holds a 47.8% share of the global cloud market, has certified Cyber Security Cloud as the seventh AWS WAF Managed Rules Seller in the world.
As a leading company, we will continue to develop services that create a safe and secure cyberspace for people around the world, and contribute to the promotion of the information revolution.

*1 Source: Market research on "Cloud-based WAF services" (as of June 16, 2019) <ESP Research Institute> (survey conducted from May 2019 to June 2019)
*2 Source: Gartner (July 2019) Worldwide IaaS Public Cloud Services Market Share, 2017-2018
(Millions of US Dollars)